|
|
Appendix: Basic Steps for Using PGP
|
| |
|
Editor's Note: These are from chapter 1 from the Windows and Mac OS X PGP User's Guides. The User's
Guides are well written, with clear, step-by-step instructions
on how to use PGP. You'll have the entire PDF version in your PGP folder after you install PGP.
Don't try to read either User's Guide cover-to-cover though, you'll
get lost in key management details. (A very easy subject to get lost in!)
What you should do instead is print chapters 1 through 4 of the Users Guide, which explain how to install and use PGP, and chapters 9 and 10, which have more information about keys. People using PGP on Mac OS X, should also read Chapter 8, "PGP Desktop and the Finder". The Appendices
are also interesting. Care to print the entire 252 pages (Windows)/170 pages (Mac)? I did, and don't
regret it.
|
|
|
| | | |
| |
|
| |
|
|
|
Overview
|
| |
PGP Desktop is a security tool that uses cryptography to protect your data
against unauthorized access.
PGP Desktop protects your data while being sent by email or by instant messaging (IM). It lets you encrypt your entire hard drive, so everything is protected all the time, or just a portion of your hard drive, on which you can
securely store your most sensitive data. It also lets you put any combination
of files and folders into an encrypted, compressed package for easy distribution or backup.
PGP Desktop lets you create PGP keypairs and manage both your personal
keypairs and the public keys of others.
|
|
| |
|
|
|
Basic Steps for Using PGP Desktop for Windows
|
| |
- Install PGP Desktop on your computer.
If you are a corporate user, your PGP administrator may have specific
installation instructions for you to follow or may have configured your PGP
installer with certain settings. Either way, this is the first step.
- Run the Setup Assistant.
The Setup Assistant will get you up and running by helping you to license
PGP Desktop, create a keypair (if you don’t have one), publish your public
key on the PGP Global Directory, enable PGP Messaging, and give you a
quick overview of other features. If your PGP Desktop installer application
was configured by a PGP administrator, there may be other activities that
are part of the Setup Assistant.
- Exchange public keys with others.
After you have created a keypair, you can begin corresponding with other
PGP Desktop users. You will need a copy of their public key and they will
need yours. If you didn’t upload your public key to the PGP Global Directory using the Setup Assistant, you should do so now. The PGP Global
Directory is also the first place you should look for the public keys of
those persons to whom you want to send secure messages. When you are
part of the PGP Global Directory, PGP Desktop will handle finding and verifying the keys of other PGP Desktop users automatically.
- Validate the public keys you get from untrusted keyservers.
When you get someone’s public key from an untrusted keyserver, you
should attempt to make sure it has not been tampered with and that it
really belongs to the purported owner. You do this by comparing the
unique fingerprint on your copy of someone’s public key to the fingerprint
on that person’s original key. Keys from trusted keyservers like the PGP
Global Directory have already been verified.
- Start securing your email, files, and IM sessions.
After you have generated your keypair and have exchanged public keys,
you can begin encrypting, signing, decrypting and verifying your email
messages and files.
- After you have sent or received some messages, check the messaging
logs to make sure everything is working correctly.
As you send and receive messages, notification windows will pop up from
your Windows System tray telling you what PGP Desktop did. After you
grow familiar with what happens to your inbound and outbound messages, you may turn these notifications off if you’d like. More detailed
information on the operations performed on messages can be seen in the
Messaging Log.
- Modify your messaging policies, if necessary.
Having correctly configured messaging policies means your email messages will be secured automatically and transparently. The default policies
provide opportunistic encryption to anyone with a key published on the
PGP Global Directory, and also provide a forced encryption mode if you
include the text “[PGP]” in your Subject line; the message will not be sent
if verified keys cannot be found.
- Start using PGP Desktop’s other features.
You can encrypt an entire drive using the PGP Whole Disk Encryption feature or just a portion of it using the PGP Virtual Disk feature, create a compressed and encrypted PGP Zip archive, or shred sensitive files you no
longer need.
|
|
| |
|
|
|
Basic Steps for Using PGP Desktop for Mac OS X
|
| |
Now that we know a little bit about PGP Desktop, let’s go deeper into what
you need to do to get started using it:
- Install PGP Desktop on your computer.
If you are a corporate user, your PGP administrator may have specific
installation instructions for you to follow or may have configured your PGP
installer with certain settings. Either way, this is the first step.
- Run the Setup Assistant.
The Setup Assistant will get you up and running by helping you to create
a keypair (if you don’t have one) and publish your public key to the PGP
Global Directory.
- Exchange public keys with others.
After you have created a keypair, you can begin corresponding with other
PGP Desktop users. You will need a copy of their public key and they will
need yours. If you didn’t upload your public key to the PGP Global Directory using the Setup Assistant, you should do so now. The PGP Global
Directory is also the first place you should look for the public keys of
those persons to whom you want to send secure messages.
When you are part of the PGP Global Directory, PGP Desktop will handle
finding and verifying the keys of other PGP Desktop users automatically.
- Validate the public keys you get.
When you get someone’s public key, you should attempt to make sure it
has not been tampered with and that it really belongs to the purported
owner. You do this by comparing the unique fingerprint on your copy of
someone’s public key to the fingerprint on that person’s original key.
- Start securing your email, files, and instant messaging.
After you have generated your keypair and have exchanged public keys,
you can begin encrypting, signing, decrypting and verifying your email
messages and files.
- After you have sent or received some messages, check the messaging
logs to make sure everything is working correctly.
As you send and receive messages, notification windows will pop up telling you what PGP Desktop did. After you grow familiar with what happens to your inbound and outbound messages, you may turn these
notifications off if you would like. More detailed information on the operations performed on messages can be seen in the Messaging Log.
- Modify your messaging policies, if necessary.
Having correctly configured messaging policies means your email messages will be secured automatically and transparently.
The default policies provide opportunistic encryption to anyone with a key
published on the PGP Global Directory, and also provide a forced encryption mode if you include the text “[PGP]” in your Subject line where the
message will not be sent if valid keys could not be found.
- Start using PGP Desktop’s other features.
You can encrypt a portion of your hard drive, create a compressed and
encrypted PGP Zip archive, or shred files you no longer need.
Copyright © 1991–2005 by PGP Corporation. All Rights Reserved. |
|
| |
|
